$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/w4uqBzm4Mj2-R8YeoG88_2fLWCk.roa File: w4uqBzm4Mj2-R8YeoG88_2fLWCk.roa (raw, json) Hash identifier: AoGwDowke/wx7Ewk1b1/7q0JV51ibw8I96mkHqGI0UA= Subject key identifier: C3:8B:AA:07:39:B8:32:3D:BE:47:C6:1E:A0:6F:3C:FF:67:CB:58:29 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 15A2 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/w4uqBzm4Mj2-R8YeoG88_2fLWCk.roa Signing time: Tue 31 Mar 2026 08:00:01 +0000 ROA not before: Tue 31 Mar 2026 08:00:01 +0000 ROA not after: Mon 15 Mar 2027 01:30:02 +0000 asID: 9605 IP address blocks: 220.210.68.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 16:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5538 (0x15a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 31 08:00:01 2026 GMT Not After : Mar 15 01:30:02 2027 GMT Subject: CN=C38BAA0739B8323DBE47C61EA06F3CFF67CB5829 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:25:09:6a:61:fc:49:3e:fb:b9:8b:6f:45:f6: 15:22:cf:3d:c5:c0:66:68:3c:4f:8e:0b:db:a1:1d: 0b:30:18:65:a8:20:7b:fb:74:ca:f4:e4:8c:f3:de: 6e:e5:11:d4:2a:ae:45:3c:64:f9:ff:fd:db:f3:fd: c7:7c:51:a8:27:54:53:97:03:0c:e7:02:e3:c9:50: 80:c3:d9:80:69:6d:b2:59:17:6a:7c:2a:66:c9:76: 98:5c:d7:e6:94:4f:48:c1:26:fe:d3:c0:d2:ba:16: 09:30:e4:7a:ad:f8:15:88:da:25:f9:38:36:04:ce: 70:83:f4:6f:9c:af:28:e5:76:b5:41:54:89:e0:be: ae:42:9d:0c:6f:d9:1e:f8:14:8c:d4:9c:e2:7a:e7: 14:0d:a8:2b:49:e3:a2:fd:2e:0d:67:95:18:af:67: 28:1b:a9:7e:1c:1f:e3:1f:03:33:5f:2e:b1:37:0a: 2b:4d:57:c4:d8:32:6b:0c:52:a0:f5:6f:e5:aa:fc: 61:1a:b4:b1:3d:67:c1:c4:35:a9:f3:40:7d:cf:a1: cf:39:a4:53:54:ed:a5:1e:1f:90:de:09:86:88:0f: 75:78:10:dc:c7:8f:6a:d5:07:63:83:79:33:34:ab: 74:ce:a1:9d:40:c0:c5:b0:bc:8e:e6:cb:6b:e3:cb: 66:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:8B:AA:07:39:B8:32:3D:BE:47:C6:1E:A0:6F:3C:FF:67:CB:58:29 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/w4uqBzm4Mj2-R8YeoG88_2fLWCk.roa sbgp-ipAddrBlock: critical IPv4: 220.210.68.0/23 Signature Algorithm: sha256WithRSAEncryption 91:87:55:d5:31:de:19:84:7e:b0:b4:eb:07:40:38:4a:16:e7: 08:b4:5c:0c:95:3a:86:0e:4c:92:69:23:65:0b:10:6f:18:fb: 46:4d:7d:23:4d:85:58:7f:f3:77:b9:50:8d:37:6a:ce:66:7c: 04:10:76:bc:97:2d:18:2c:8e:e9:4c:b9:47:d7:3a:39:17:15: ad:4b:05:b2:14:7a:5a:27:38:70:fa:2a:df:8f:27:32:d6:e5: 4f:65:e4:53:5b:ed:66:04:9d:3b:18:50:28:eb:dd:9e:c1:20: 4a:ab:f7:cf:d8:32:5e:6d:38:21:00:08:33:ca:60:49:4c:9a: 8c:ff:eb:50:b0:7f:25:8b:6b:f3:a0:56:77:ef:55:20:df:f4: 50:1f:8c:47:68:6b:e8:ab:75:72:5e:9a:6d:00:5d:4d:72:fb: ed:8c:c0:4f:ed:f2:63:a0:ea:a7:7c:b3:15:b4:a1:87:95:57: ca:50:95:a5:8e:f6:e5:5b:90:35:6f:c5:33:af:83:f7:4a:3c: 4d:01:b6:3e:cf:6d:ab:ef:82:9a:6c:2d:2f:1f:46:8b:6c:93: fc:71:17:35:aa:92:85:cf:3e:fd:85:42:3f:99:7b:30:cc:64: db:c0:d6:58:f7:b3:e7:18:96:8e:e7:b0:59:2a:5e:c3:ce:0f: 47:3e:90:d6 -----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgICFaIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNjAzMzEw ODAwMDFaFw0yNzAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEMzOEJBQTA3MzlCODMy M0RCRTQ3QzYxRUEwNkYzQ0ZGNjdDQjU4MjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBJQlqYfxJPvu5i29F9hUizz3FwGZoPE+OC9uhHQswGGWoIHv7 dMr05Izz3m7lEdQqrkU8ZPn//dvz/cd8UagnVFOXAwznAuPJUIDD2YBpbbJZF2p8 KmbJdphc1+aUT0jBJv7TwNK6Fgkw5Hqt+BWI2iX5ODYEznCD9G+cryjldrVBVIng vq5CnQxv2R74FIzUnOJ65xQNqCtJ46L9Lg1nlRivZygbqX4cH+MfAzNfLrE3CitN V8TYMmsMUqD1b+Wq/GEatLE9Z8HENanzQH3Poc85pFNU7aUeH5DeCYaID3V4ENzH j2rVB2ODeTM0q3TOoZ1AwMWwvI7my2vjy2ZDAgMBAAGjggHZMIIB1TAdBgNVHQ4E FgQUw4uqBzm4Mj2+R8YeoG88/2fLWCkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDBxBggrBgEFBQcBCwRlMGMwYQYIKwYB BQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvMzA5L3c0dXFCem00TWoyLVI4WWVvRzg4XzJmTFdDay5yb2EwHwYI KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHc0kQwDQYJKoZIhvcNAQELBQADggEB AJGHVdUx3hmEfrC06wdAOEoW5wi0XAyVOoYOTJJpI2ULEG8Y+0ZNfSNNhVh/83e5 UI03as5mfAQQdryXLRgsjulMuUfXOjkXFa1LBbIUelonOHD6Kt+PJzLW5U9l5FNb 7WYEnTsYUCjr3Z7BIEqr98/YMl5tOCEACDPKYElMmoz/61CwfyWLa/OgVnfvVSDf 9FAfjEdoa+irdXJemm0AXU1y++2MwE/t8mOg6qd8sxW0oYeVV8pQlaWO9uVbkDVv xTOvg/dKPE0Btj7PbavvgppsLS8fRotsk/xxFzWqkoXPPv2FQj+ZezDMZNvA1lj3 s+cYlo7nsFkqXsPOD0c+kNY= -----END CERTIFICATE-----Generated at Tue Apr 7 19:43:04 2026 by rpki-client